Asset inventory and Organizational context
Assign topic to the user
Answer: Examples of assets related to people are managers, experts, external persons, etc. Treatment for such assets deals with how to replace missing employees, how to prevent external people entering sensitive areas, etc.
This article will provide you further explanation about awareness and training:
- How to perform training & awareness for ISO 27001 and ISO 22301 https://advisera.com/27001academy/blog/2014/05/19/how-to-perform-training-awareness-for-iso-27001-and-iso-22301/
2. Internal issues/ External issues and Interested parties examples in Risk Assessment report - Is there a standard template?
Answer: Examples of external issues are: geographical location, public infrastructure available, political, economic, social and technological trends, etc.
Examples of interested parties: clients, suppliers, top management, and employees, etc.
Examples of internal issues are: organizational culture, processes and procedures, equipment, financial r esources, etc.
This article will provide you further explanation about organizational context:
- How to define context of the organization according to ISO 27001 https://advisera.com/27001academy/knowledgebase/how-to-define-context-of-the-organization-according-to-iso-27001/
As for Risk assessment report, I suggest you to take a look at the free demo of our Risk Assessment and Treatment Report at this link: https://advisera.com/27001academy/documentation/risk-assessment-and-treatment-report/
Comment as guest or Sign in
Sep 23, 2018